vendor:
Moodle
by:
xSh[at]overclock.ch
7.5
CVSS
HIGH
User password read out
200
CWE
Product Name: Moodle
Affected Version From: <= 1.5.2
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
MOODLE <= 1.5.2 user password read out
The Moodle CMS allows an attacker to read out user account passwords in md5 hash.
Mitigation:
Upgrade to a patched version of Moodle.